x/vulndb: potential Go vuln in codeberg.org/forgejo/forgejo: CVE-2023-49947 #2373
Labels
excluded: EFFECTIVELY_PRIVATE
This vulnerability exists in a package can be imported, but isn't meant to be outside that module.
CVE-2023-49947 references codeberg.org/forgejo/forgejo, which may be a Go module.
Description:
Forgejo before 1.20.5-1 allows 2FA bypass when docker login uses Basic Authentication.
References:
Cross references:
No existing reports found with this module or alias.
See doc/triage.md for instructions on how to triage this report.
The text was updated successfully, but these errors were encountered: